Episodes
-
“Always be on the administrative end”
Join us for our holiday episode for 2024 where we invite the "guests of episodes past" from the past year to stop by and join in the warmth and wealth of kinship around Microsoft Security.
Show Notes/Links
* THE Microsoft Security Insights Show Holiday Gear: https://www.microsoftsecurityinsights.com/p/the-microsoft-security-insights-show-12f
* Microsoft Security Incident Prediction data: https://www.kaggle.com/datasets/Microsoft/microsoft-security-incident-prediction
* Tinka og Kongespillet: https://juleweb.dk/julekalendere/tinka-og-kongespillet/
* Application discovery (Preview) for Global Secure Access: https://learn.microsoft.com/en-us/entra/global-secure-access/how-to-application-discovery
Watch the Live Replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
Come join the entire crew as we have one of our last shows of the year - leading up to the final 2024 holiday episode.
Show Notes/Links
* Microsoft Cloud for Sovereignty: https://learn.microsoft.com/industry/sovereignty/sovereignty-capabilities
* Cybersecurity Maturity Model Certification (CMMC): https://learn.microsoft.com/azure/compliance/offerings/offering-cmmc
* Festive Tech Calendar 2024: https://www.festivetechcalendar.com/
Watch the live replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
Missing episodes?
-
Join us this episode as we discuss an enterprising area within Microsoft that focuses on Tech for Social Impact. We’re joined by Chief Security Advisor, Jerry Carlson, to discuss how this area helps customers strategize on cybersecurity and coordinate resources to help them in their missions.
Show Notes/Links
* Jerry’s LinkedIn profile: https://www.linkedin.com/in/jerrycar/
* Any nonprofit that wants to take advantage of Microsoft offers: https://nonprofit.microsoft.com/getting-started
* A PDF of all the offers available: Non-profit Offers
Watch the live replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
It’s the “Live from Ignite” episode! Join us this episode as we welcome Jess Dodson, Senior Cloud Solution Architect at Microsoft, known as GirlGerms on X! Jess is a bonified super Sentinel expert from the land down under. Listen in as Jess shares the most interesting and horrifying stories.
Show Notes/Links
* Jess’s LinkedIn Profile: https://www.linkedin.com/in/jrdodson/
* Jess's consolidated Cyber month content: https://www.linkedin.com/posts/jrdodson_security-secops-infosec-activity-7257634732438355969-MlOw/
* When it SIEMS like you’re doing it all wrong: https://girl-germs.com/?p=2493
* Jess’s website: https://linktr.ee/girlgerms
Watch the Live Replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
Our original guest had an emergency situation, so you'll just have to sit through listening to your favorite co-hosts' banter for the first time in about a year.
Watch the Live Replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
Join us this episode as we introduce Nina Alli. Nina Alli has over 16 years of experience in biotechnology, biomedical, and security with a focus of healthcare. Her work in healthcare has seen her deal with the complexities of modernization of complex legacy systems within the healthcare industry, this included but are not limited to infrastructure, legacy system integration, and EHR (electronic healthcare records). Her passion and work on various advisory boards has seen her work on the Department of Defense (DoD) Technology Transfer Advisory Board in New York City, and Digital Medical (DiMe) Society Strategic Advisory Board in which she weighs in on various elements where technology intersects healthcare. Alli is Executive Director of Biohacking Village at DEFCON.
Show Notes/Links
* Nina’s LinkedIn Profile: https://www.linkedin.com/in/janineamedina/
* Midnight Blizzard conducts large-scale spear-phishing campaign using RDP files: https://www.microsoft.com/en-us/security/blog/2024/10/29/midnight-blizzard-conducts-large-scale-spear-phishing-campaign-using-rdp-files/?msockid=17ac8e193f12624606ec9abc3ea8636f
Watch the Live Replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
Join us for this spine-tingling Halloween special, as the Precision Hunt Team from Microsoft Defender Experts takes you on a thrilling tour through the creepiest corners of the threat landscape. Discover how to battle the cyber beasts and creepy crawlies that are terrorizing networks everywhere—before they come knocking on your door.
Show Notes/Links:
* Plan costs and understand pricing and billing - Microsoft Sentinel | Microsoft Learn
* Midnight Blizzard conducts large-scale spear-phishing campaign using RDP files | Microsoft Security Blog
* Introducing the new Microsoft Sentinel simplified pricing.
* Detecting browser anomalies to disrupt attacks early - Microsoft Community Hub
* Integrating Defender EASM With Microsoft Sentinel Guide - CHARBEL NEMNOM - MVP | MCT | CCSP | CISM - Cloud & CyberSecurity
* Save money on your Sentinel ingestion costs with Data Collection Rules - Microsoft Community Hub
* Deploy Microsoft Sentinel using Bicep - Microsoft Community Hub
* Microsoft Defender for Identity: the critical role of identities in automatic attack disruption - Microsoft Community Hub
Watch the Live Replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
Join us this episode as we welcome Samantha Gardener, Principal Threat Hunt Lead at Microsoft.
Show Notes/Links
* Mini workshop from MMS: https://aka.ms/MMSKQL
* Coming in December: SC-5004: Defend against cyberthreats with Microsoft Defender XDR: https://techcommunity.microsoft.com/t5/ilt-communications-blog/coming-in-december-sc-5004-defend-against-cyberthreats-with/ba-p/4281365
* Cybersecurity Summit 2024 (Richard Diver): https://www.youtube.com/live/ix4V-xjqEls
* Webinar - Defender Experts: S.T.A.R. Forum - Strategies for Threat Awareness and Response, Episode 1: https://aka.ms/DefenderExpertsWebinar
Watch the Live Replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
Join us this episode as we welcome back Microsoft MVP, Craig Fretwell. Craig has changed companies since we last talked. Working now for Rackspace does he fret well? Tune in to find out. Join us live to ask Craig your questions!
Watch the live replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
Join us this episode as we talk with Thomas Naunheim, Cyber Security Architect and MVP. Thomas is here to share some insights of his "EntraOps Privileged EAM" project.
Show Notes/Links
* Thomas Naunheim’s LinkedIn profile: https://www.linkedin.com/in/thomasnaunheim/
* Upcoming Defender Experts Webinar: https://aka.ms/DefenderExpertsWebinar
* Lyrics for Three's Company: https://www.lyricsondemand.com/tvthemes/threescompanylyrics.html
* EntraOps Privileged EAM: https://entraops.com/
Watch the live show replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
Join us this episode as we welcome back Red Canary to the show. But this time, we'll dig into what Red Canary is doing with Generative AI and specifically as part of the Copilot for Security partners program.
Show Notes/Links
* Red Canary's website: https://redcanary.com/
* Cordell BaanHofman's LinkedIn profile: https://www.linkedin.com/in/cordellb/
* Sam Straka's LinkedIn profile: https://www.linkedin.com/in/samstraka10/
* Red Canary Copilot for Security Prompts: https://github.com/rod-trent/Copilot-for-Security/blob/main/Prompts/Plugins/Red_Canary.md
* Microsoft Copilot for Security Achieves HITRUST Certification: https://techcommunity.microsoft.com/t5/microsoft-security-copilot-blog/microsoft-copilot-for-security-achieves-hitrust-certification/ba-p/4262303
* Microsoft Copilot for Security Now Covered by HIPAA Business Associate Agreement (BAA): https://techcommunity.microsoft.com/t5/microsoft-security-copilot-blog/microsoft-copilot-for-security-now-covered-by-hipaa-business/ba-p/4220174
Watch the live replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
Join us this episode as we welcome Miguel Clarke, Cybersecurity and GRC Evangelist with MISA member Armor Defense. As a trusted partner to more than 1,500 firms in over 40 countries, Armor offers cybersecurity and compliance consulting, professional services, and managed services. Armor’s industry-leading experts leverage non-proprietary frameworks and a 24/7/365 SOC to help organizations tackle the complexities of cybersecurity and compliance at a cloud-scale.
Show Notes/Links
* Armor’s web site: https://www.armor.com/
* Miguel Clarke’s LinkedIn profile: https://www.linkedin.com/in/miguel-a-clarke/
* David Fatovic's LinkedIn profile: https://www.linkedin.com/in/davidfatovic/
Watch the live replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
Come learn about the Microsoft Learn Student Ambassadors program! This program is aimed at students who are interested in technology and have a passion for sharing their knowledge with others. The program provides students with the opportunity to learn about new Microsoft products, engage with like-minded peers, and receive training and resources to help them become successful technology leaders on their campuses. The Microsoft Student Partner program is a similar program that is a global group of on-campus ambassadors who are eager to help fellow students, lead in their local tech community, and develop technical and career skills for the future.
Show Notes/Links
* Microsoft Learn Student Ambassadors: https://mvp.microsoft.com/studentambassadors
* Nicklas' blog: https://www.learnintune.net/
* MVP Program: https://mvp.microsoft.com/
* Microsoft Student Innovator: https://developer.microsoft.com/en-us/reactor/series/S-1386/
* Steve Hosking - Microsoft MMD Team: https://steven.hosking.com.au/
* The Future of Cybersecurity: Leveraging AI to Secure Your Organization: https://msevents.microsoft.com/event?id=2106510487
* Microsoft Sentinel pricing: https://azure.microsoft.com/en-us/pricing/details/microsoft-sentinel/
* Microsoft Purview Data Loss Prevention: https://www.microsoft.com/en-us/security/business/information-protection/microsoft-purview-data-loss-prevention
Watch the live replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
Join is this episode as we welcome Microsoft royalty: Nishan DeSilva. Learn what's it's like leading a team of Principal Product People Manager Leads, Principal Product Managers, Developers and Senior Product Managers across globe.
Show Notes/Links
* Nishan’s LinkedIn profile: https://www.linkedin.com/in/nishandesilva/
* Microsoft Copilot for Security: https://www.microsoft.com/en-us/security/business/ai-machine-learning/microsoft-copilot-security
* Microsoft Purview: https://www.microsoft.com/en-us/security/business/microsoft-purview
* Secure your data to confidently take advantage of Generative AI with Microsoft Purview: https://techcommunity.microsoft.com/t5/security-compliance-and-identity/secure-your-data-to-confidently-take-advantage-of-generative-ai/ba-p/4127335
* Afternoon Cyber Tea with Ann Johnson - The Role of Data and AI in Modern Cybersecurity: https://thecyberwire.com/podcasts/afternoon-cyber-tea/99/notes
* Security above all else—expanding Microsoft’s Secure Future Initiative: https://www.microsoft.com/en-us/security/blog/2024/05/03/security-above-all-else-expanding-microsofts-secure-future-initiative/
Watch the live replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
Join us this episode as we welcome the illustrious Mark Simos, lead cybersecurity architect at Microsoft - and inventor of the super famous Microsoft Cybersecurity Reference Architecture (MCRA).
Notes/Links
* Mark's LinkedIn profile: https://www.linkedin.com/in/marksimos/
* Mark's List of Cybersecurity Resources frequently sent to customers and colleagues: https://aka.ms/markslist
* Microsoft Cybersecurity Reference Architectures: https://aka.ms/mcra
* Microsoft Cybersecurity Reference Architectures videos: https://aka.ms/mcra-videos
Watch the live replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
Stop by this episode and learn why Performanta has been recommended for the show for its highly innovative and sophisticated solutions. Looking for evidence of how far a partner can push the integration with Copilot for Security? This is it!
Show Notes/Links
* Jose’s LinkedIn Profile: https://www.linkedin.com/in/jose365/
* Jose’s Blog:
* Torvald’s LinkedIn Profile: https://www.linkedin.com/in/torvald-johnson/
* Azure classic subscription administrators: https://learn.microsoft.com/en-us/azure/role-based-access-control/classic-administrators?tabs=azure-portal
* Taking a Snapshot of Existing Tenant: https://microsoft365dsc.com/user-guide/get-started/snapshot-of-existing-tenant/
Watch the live replay…
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
Join us this episode as we continue our Passion to Profession month as we welcome Arielle Cireseanu-Acevedo, Cybersecurity Governance, Risk and Compliance Analyst.
Show Notes/Links
* Arielle’s LinkedIn profile: https://www.linkedin.com/in/arielle-cireseanu-acevedo/
* Accelerate your observability journey with Azure Monitor pipeline (preview): https://techcommunity.microsoft.com/t5/azure-observability-blog/accelerate-your-observability-journey-with-azure-monitor/ba-p/4124852
* Download the Azure Monitor pipeline deck: https://github.com/The-Microsoft-Security-Insights-Show/ShowCode/blob/main/Docs/Arc%20Jumpstart%20deck.pdf
Watch the Live Replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
Join us this episode as we continue our Passion to Profession month as we welcome Hatim Othman, Information Security Leader at Cisco Meraki.
Show Notes/Links
* Morten's blog link: https://mortenknudsen.net/?p=3200
* Reddit: https://old.reddit.com/r/sysadmin/comments/1eqziiy/patch_tuesday_megathread_20240813/li5kt6n/
* Bay Area Coffee Roasters: https://hdehal.github.io/coffee-maps/?fbclid=IwAR1RlnylrsBIaLhe8jPbRSAEwhIZs70MopkBMpbhF4k0REW6gJx0szedfWQ
Watch the live replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
Join us this episode as we talk with Angela Brown. Continuing our Passion to Profession month.
Show Notes/Links
* Angela’s LinkedIn profile: https://www.linkedin.com/in/angsec/
* Partner training on CfS: Copilot for Security (microsoft.github.io)
Microsoft 365 Message Center Archive (merill.net) – M365 updates (including security updates)
https://merill.net
– Awesome site and blog for Entra and AD tools and news
Entra ID has announced a new User Risk detection focused on Attacker in the Middle (AiTM). Click Here to Learn More.
Microsoft Research Published a blog about AiTM, describing architecture patterns that step in to block this using defense in depth strategies. Here is the blog
The NIST Zero Trust Implementation Guide featuring Microsoft’s Security Capabilities. This is the first industry wide effort that provides customers with a guide on how to implement Zero Trust security from a trusted “neutral” source (NIST) that tries to showcase how to implement the user cases using the different security vendors out there. Microsoft’s Security products featured prominently and we now have this beautiful mapping that shows that our products across the division can truly cover almost all the required capabilities to satisfy NIST’s requirements. Microsoft security partnered with NIST to announce the publication on our own blogs:Smoother Zero Trust with Microsoft and NIST | Microsoft Security BlogAnd this is the full picture blessed by NIST:
What is this effort?
Since early 2022, I have a lead a team of Zero Trust implementation experts across CXE, DSR and PG to collaborate with NIST’s NCCoE on this publication. After initial reception to their proposed Zero Trust reference architecture was mixed, NIST sought out this lab to make the architecture real by showing how it can be implemented. The lab featured over 20 of the most impactful security vendors in the industry. The lab organized the vendors into four “enterprises” each one showcasing a mix of different vendors and trying to implement the same use cases. We were able to both showcase our own capabilities for Microsoft Security as well as show that we play well with others as our “Enterprise 3” features Lookout, Forescout, Appgate and F5, for example.
Why is this important?
* NIST’s Zero Trust Reference Architecture is likely to be the blueprint used by other organizations and regulatory bodies to guide enterprise customers in how to deploy Zero Trust Access and security end to end. Having Microsoft represented shows our thought leadership as well as our desire to play well with others.
* Having all our capabilities on full display helps customers who decide to with the better together Microsoft story build the comfort that our suite of products covers all if not most of their needs.
* We were also able to influence many of the use cases themselves and add to them to showcase capabilities unique to the Microsoft story or better with the Microsoft story. For example, authentication context, authentication strength, access revocation and data security use cases were all added based on our feedback.
Watch the Live Replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com - Show more